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METHOD AND SYSTEM FOR IDENTIFYING 
THE HEALTH OF VIRTUAL ROUTERS 



BACKGROUND 

[0001] Computer networks, such as Local Area Networks (LANs) and 
Metropolitan Area Networks (MANs) can be complex to operate. Corporations 
use network management software applications to maintain computer networks. 
The network management software applications can display the network topology 
and indicate any failures in the computer network. An example of a network 
management software application, is the Hewlett-Packard OpenView Network 
Node Manager (NNM) product. 

[0002] To reduce network disruption due to router failure, some networks 
employ virtual routers, which are also known as virtual router groups. Virtual 
routers typically comprise two or more routers which share the same IP address. 
One of the routers of the virtual router is designated as the active router while one 
of the other routers of the virtual router is designated as a standby router. The 
active router forwards all packets for the virtual router. The standby router of the 
virtual router is only employed for routing functions for the virtual router when 
the active router switches from the active state, e.g., the active router fails. Since 
a virtual router employs a single IP address, the process of switching one router 
from the active state to an inactive state and another router into the active state is 
transparent to end users. 
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SUMMARY 

[0003] A system and method are provided for identifying the health of virtual 
routers in a network. An exemplary method includes obtaining first information 
from a first and second router of a virtual router. The first information is used to 
determine the health of the virtual router. A topology of the network is produced 
identifying the health of the virtual router. An exemplary machine readable 
medium includes software for causing a computing device to perform the 
exemplary method. 

[0004] A method for identifying the health of virtual routers in a network is 
provided. First information is obtained from a first and second router in the 
network. Based on the first information it is determined whether the first and 
second routers comprise a virtual router. The first information is used to 
determine the health of the virtual router if the first and second routers comprise a 
virtual router. A topology of the network identifying the health of the virtual 
router is produced. An exemplary machine readable medium includes software for 
causing a computing device to perform the exemplary method. 
[0005] A management computer for identifying the health of virtual routers in a 
network is provided. The management computer comprises a processor 
configured to obtain first information from a first and second router of a virtual 
router, and to use the first information to determine the health of the virtual router. 
The management computer also comprises a memory which stores the first 
information to produce a topology of the network identifying the health of the 
virtual router. 

[0006] A management computer for identifying the health of virtual routers in a 
network is provided. The management computer comprises a processor 
configured to obtain first information from a first and second router in the 
network, to determine, based on the first information, whether the first and second 
routers comprise a virtual router, to use the first information to determine the 
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health of the virtual router if the first and second routers comprise a virtual router. 
The management computer also comprises a memory which stores the first 
information to produce a topology of the network identifying the health of the 
virtual router. 

[0007] A management computer for identifying the health of virtual routers in a 
network is provided. The management computer comprises means for processing 
to obtain first information from a first and second router of a virtual router, and to 
use the first information to determine the health of the virtual router. The 
management computer also comprises means for storing the first information to 
produce a topology of the network identifying the health of the virtual router. 
[0008] A management computer for identifying the health of virtual routers in a 
network is provided. The management computer comprises means for processing 
to obtain first information from a first and second router in the network, to 
determine, based on the first information, whether the first and second routers 
comprise a virtual router, to use the first information to determine the health of the 
virtual router if the first and second routers comprise a virtual router. The 
management computer also comprises means for storing the first information to 
produce a topology of the network identifying the health of the virtual router. 



BRIEF DESCRIPTION OF THE DRAWINGS 
[0009] The accompanying drawings provide visual representations which will be 
used to more fully describe the representative embodiments disclosed herein and 
can be used by those skilled in the art to better understand them and their inherent 
advantages. In these drawings, like reference numerals identify corresponding 
elements and: 

[0010] Figure 1 is a flowchart illustrating a method for identifying the health of 
virtual routers. 
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[0011] Figures 2A-2E are diagrams of an exemplary computer network display. 
[0012] Figure 3 is a diagram of an exemplary computer implementation and 
network. 

DETAILED DESCRIPTION 
[0013] Figure 1 is a flowchart illustrating a method for identifying the health of 
virtual routers in a network. As referenced herein, the health of a virtual router 
represents whether the routers of the virtual router are configured for their 
appropriate active and standby states based on each router's priority. In step 105, 
first information is obtained from first and second routers of a virtual router. The 
first information can include the IP address for the virtual router, the group 
number for the virtual router, the group priority for the router of the virtual 
router, the group standby state for the router of the virtual router and the actual IP 
address for the router of the virtual router. The group number along with the 
iflndex of a particular interface uniquely identifies of which virtual router the 
router is a member. The group priority is used to identify which router is the 
active router of the virtual router. The group standby state indicates whether the 
router is the active router of the virtual router. The first information can be 
obtained by sending one or more queries to the virtual router. 
[0014] Virtual routers can operate in accordance with a number of different 
protocols which can be generically referred to as virtual swappable router 
protocols. In accordance with exemplary embodiments, the virtual routers operate 
in accordance with Cisco Systems Inc. Hot Standby Router Protocol (HSRP). If 
the virtual router supports the extended HSRP, then the first information can also 
include the interface tracked priority of the virtual router and indices to identify 
the iflndex of the configured interface, the iflndex of the tracked interface and the 
virtual router group number. 



200309987 

-5- 

[0015] Using the first information, in step 110 it is determined that the first and 
second routers comprise a virtual router, for example by comparing the IP address 
of the virtual router in the first information received from the first and second 
routers. In step 115, the health of the virtual router is determined using the first 
information by determining whether the first information indicates that the routers 
of the virtual router are configured for their appropriate active and standby states 
based on each router's priority. In step 120, a topology identifying the health of 
the virtual router is produced, for example on a display. When information is 
obtained regarding a plurality of virtual routers, the display of the topology will 
identify the health of each of the plurality of virtual routers. 
[0016] Once the display of the topology identifying the health of the virtual 
routers has been produced, messages in the network are monitored in step 125. In 
step 130, it is determined whether one of the monitored messages contains second 
information. The second information can be from trap flows from the virtual 
router indicating which router of the virtual router is in an active state. If one of 
the monitored messages does not contain second information, then in accordance 
with the "No" path out of decision step 130, messages in the network are 
monitored in step 125. 

[0017] If the monitored messages contain second information, in accordance 
with the "Yes" path out of decision step 130, then the second information is 
compared to the information in the produced topology, to determine whether the 
health of the virtual router has changed. For example, if the second information 
indicates that a second router of the virtual router is in an active state while the 
information in the produced topology indicates that a first router of the virtual 
router is in an active state, then it is determined from these state indications that 
the health of the virtual router has changed. If the health of the virtual router has 
changed, then in step 135 the status of the topology is updated based on the second 
information to identify the change in health of the virtual router. As indicated by 
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the return path from step 135 to step 125, the system will continue to monitor the 

network for messages and update the topology as needed. 

[0018] The following is exemplary pseudo code for performing the method 

described above in connection with Figure 1 in a network which operates using 

HSRP: 

For all devices { 

Get devicename 

Get HSRP STATE list 

If (HSRP STATE list ! - NULL) { device is not configured for HSRP 
Get HSRP VIRTUAL IP ADDRESS list 
Get IP ADDR list 
Get HSRP GRP PRIORITY list 
Get HSRP TRACKED PRIORITY list 

While (HSRP STATE list not NULL){ 

get cHsrpGrpStandbyState from HSRP STATE list 
if (cHsrpGrpStandbyState = — active or standby or speak or listen) { 
get ifindex from HSRP STATE list 

get cHsrpGrpVirtuallpAddr from HSRP VIRTUAL IP ADDRESS list using 
ifindex 

get ipAdEntAddr from IP ADDR list using ifindex 

get cHsrpGrpPriority and hsrpgrpnum from HSRP GRP PRIORITY list using 
ifindex (hsrpgrpnum is part of the index in response) 

while (HSRP TRACKED PRIORITY list is not NULL) { 

get cHsrpExtlfTrackedPriority and trackindex from HSRP 

TRACKED PRIORITY list using ifindex (trackindex is 

part of the index in response) 
accumulate multiple entries for cHsrpExtlfTrackedPriorityand 

trackindex in trackall 
get next entry on list (HSRP TRACKED PRIORITY) 

} 

} 

output (devicename, cHsrpGrpStandbyState, ifindex, cHsrpGrpVirtuallpAddr, 
ipAdEntAddr, cHsrpGrpPriority, hsprgrpnum, trackall) 
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get next entry on (HSRP STATE list) 

} 

} 

JendFor 

where Cisco HSRP MIBs are as follows: 

HSRP GRP PRIORITY list = 

cisco. ciscoMgmt . ciscoHsrpMIB . ciscoHsrpMIBObjects . cHsrpGroup . cHsrpGrpTable . cHsrpGrpEntry . c 

HsrpGrp Priority; 

HSRP VIRTUAL IP ADDRESS Iist= 

cisco . ciscoMgmt . ciscoHsrpMIB . ciscoHsrpMIBObjects . cHsrpGroup . cHsrpGrpTable . cHsrpGrpEntry . c 

HsrpGrpVirtuallpAddr; 

HSRP STATE list= 

cisco. ciscoMgmt. ciscoHsrpMIB. ciscoHsrpMIBObjects. cHsrpGroup. cHsrpGrpTable. cHsrpGrpEntry. c 
HsrpGrpStandby State ; 

where the Cisco HSRP extended MIB is as follows: 

HSRP TRACKED PRIORITY list= 

cisco. ciscoMgmt . ciscoHsrpExtMIB . ciscoHsrpExtMIBObjects . cHsrpExtGroup . cHsrpExtlfTrackedTabl 
e.cHsrpExtlfTrackedEntry.cHsrpExtlfTrackedPriority; 

and where the IP ADDR MIB is as follows: 

IP ADDR Ust = ip.ipAddrTable.ipAddrEntry.ipAdEntAddr. 

[0019] As illustrated in the pseudo code above, for each router which supports 
HSRP the HSRP STATE list, the HSRP VIRTUAL IP ADDRESS list, the UP 
ADDR list, the HSRP GRP PRIORITY list and the HSRP TRACKED PRIORITY 
list is obtained. From this information the cHsrpGrpStandby State, iflndex, 
cHsrpGrpVirtuallpAddr, ipAdEntAddr, cHsrpGrpPriority and hsrpgrpnum are 
obtained. If the router supports extended HSRP, then the 
cHsrpExtlfTrackedPriority and trackindex are obtained. 

[0020] This pseudo code describes the building of the virtual objects for each 
HSRP group. 
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For each record of saved output { 

if ( virtualhsrpobject for cHsrpGrpVirtuallpAddr is NULL) { 
create virtualhsrpobject with key cHsrpGrpVirtuallpAddr 

} 

if (this vector of information doesn't exist in the group) { 

add this member to virtualhsrpobject with values(ipAdEntAddr, cHsrpGrp Priority, 
cHsrpGrpStandby State, hsrpgrpnum, trackall) 

} 

} 

[0021] Figures 2A and 2B illustrate an exemplary topology produced by the 
method described above in Figure 1. In Figure 2A, a large number of virtual 
routers are illustrated, and those with the darker colored circles indicate virtual 
routers which have poor health, i.e., where at least one of the routers of the virtual 
router has failed, whereas the lighter shaded virtual routers indicate that the virtual 
routers are in good health, i.e., where all of the routers of the virtual router are 
configured for their appropriate active or standby states based on each router's 
priority. For ease of explanation, Figure 2B illustrates the entire topology screen 
with only two virtual routers. If the virtual IP address in Figure 2B is selected, for 
example by double clicking, the group detail screen illustrated in Figure 2C is 
produced. This group detail screen provides data on all of the routers which 
comprise a particular virtual router. Selecting a router name in the router column 
of Figure 2C produces the node detail screen illustrated in Figure 2D. Selecting 
the IP address in the IP interface column in the group detail screen of Figure 2C, 
produces the interface detail screen illustrated in Figure 2E. 
[0022] Various aspects will now be described in connection with exemplary 
embodiments in terms of sequences of actions that can be performed by elements 
of a computer system. For example, it will be recognized that in each of the 
embodiments, the various actions can be performed by specialized circuits or 
circuitry (e.g., discrete logic gates interconnected to perform a specialized 
function), by program instructions being executed by one or more processors, or 
by a combination of both. Moreover, the exemplary embodiments can be 
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considered part of any form of computer readable storage medium having stored 
therein an appropriate set of computer instructions that would cause a processor to 
carry out the techniques described herein. 

[0023] Figure 3 illustrates an exemplary computer implementation and network. 
The computer implementation can include a management computer 305 which 
comprises a means for processing, for example a processor 310. The management 
computer also comprises an interface 315, means for storing, for example a 
memory 320, and a network interface card 325. The management computer can 
also include a display 330. The processor 310 is configured to obtain first 
information from a first and second router of a virtual router group, and use the 
first information to determine the health of the virtual router. A topology of the 
network identifying the health of the virtual router can be produced by display 
330. Alternatively, the topology can be produced by attaching a printer, or other 
output device, to interface 315. Additionally, memory 320 stores the first 
information to produce the topology. 

[0024] The management computer 305 can be connected to monitor network 
335. Specifically, the management computer 305 can be connected via the 
network interface card 325 to an edge router 340 of network 335 via 
communication link 327. The edge router 340 can be connected to one or more 
virtual routers, for example, virtual router 1 and virtual router 2 via 
communication links 341 and 342. Virtual routers 1 and 2 can also be connected 
to other virtual routers, such as, virtual router 3 via communication links 343 and 
344. Virtual router 3 can be connected to an edge router 345 via communication 
link 350. Virtual routers 1-3 each comprise at least an active router and a standby 
router. Although not illustrated in Figure 3, the edge router can be connected to 
additional virtual routers, and the network can contain conventional routers which 
are not paired with other routers to form a virtual router. 
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[0025] Those skilled in the art will appreciate that software, including 
instructions for causing a computing device or system to perform the methods or 
processes described herein, can be stored on a machine-readable medium. For 
example, the software can be embodied in any computer readable medium for use 
by or in connection with an instruction execution system, apparatus, or device, 
such as a computer based system, processor containing system, or other system 
that can fetch the instructions from the instruction execution system, apparatus, or 
device and execute the instructions. 

[0026] As used herein, a "computer readable medium" can be any means that 
can contain, store, communicate, propagate, or transport the program for use by 
or in connection with the instruction execution system, apparatus, or device. The 
computer readable medium can be, for example but not limited to, an electronic, 
magnetic, optical, electromagnetic, infrared, or semiconductor system, apparatus, 
device, or propagation medium. More specific examples (a non exhaustive list) of 
the computer readable medium can include the following: an electrical connection 
having one or more wires, a portable computer diskette, a random access memory 
(RAM), a read only memory (ROM), an erasable programmable read only 
memory (EPROM or Flash memory), an optical fiber, and a portable compact disc 
read only memory (CDROM). 

[0027] It will be appreciated by those of ordinary skill in the art that the present 
invention can be embodied in various specific forms without departing from the 
spirit or essential characteristics thereof. The presently disclosed embodiments are 
considered in all respects to be illustrative and not restrictive. The scope of the 
invention is indicated by the appended claims, rather than the foregoing 
description, and all changes that come within the meaning and range of 
equivalence thereof are intended to be embraced. 



